CVE-2024-57792

medium

Description

In the Linux kernel, the following vulnerability has been resolved: power: supply: gpio-charger: Fix set charge current limits Fix set charge current limits for devices which allow to set the lowest charge current limit to be greater zero. If requested charge current limit is below lowest limit, the index equals current_limit_map_size which leads to accessing memory beyond allocated memory.

References

https://git.kernel.org/stable/c/f6279a98db132da0cfff18712a1b06478c32007f

https://git.kernel.org/stable/c/c3703d9340ca2820e1ac63256f4b423ea8559831

https://git.kernel.org/stable/c/b29c7783ac1fe36d639c089cf471ac7a46df05f0

https://git.kernel.org/stable/c/afc6e39e824ad0e44b2af50a97885caec8d213d1

https://git.kernel.org/stable/c/6abbbd8286b6f944eecf3c74444c138590135211

https://git.kernel.org/stable/c/13eb3cae1d8e23cce96c095abe34da8028c09ac5

Details

Source: Mitre, NVD

Published: 2025-01-11

Updated: 2025-01-11

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium